Information Assurance and Cybersecurity Lead

Leidos•Colorado Springs, CO

About The Position

Join a team committed to a mission! At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers’ success. We empower our teams, contribute to our communities, and operate sustainable. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business. Are you ready for your next career challenge? The Mission Operations Division under the National Security Sector at Leidos currently has an opening for a Information Assurance & Cybersecurity Lead to work in our Colorado Springs office. This is an exciting opportunity to use your experience helping the RHEL Project. In this mission we safeguard some of the most critical systems supporting U.S. government missions. If you're driven by precision, accountability, and high-stakes collaboration, this role is built for yo Primary Responsibilities. The Information Assurance & Cybersecurity Lead is responsible for managing risks related to the use of processing, storing, or transmitting information to reduce or eliminate impact, integrity, or availability of information and information systems. Responsible for meeting both regulatory and non-regulatory compliance demands. May be responsible for management and enforcement of information security policies, training and educating end-users on proper security practices, conducting security and risk assessments using security frameworks (e.g., NIST, RMF, Common Criteria, etc.), mitigating risk via security controls, testing and evaluation to certify and accredit commercial security products, ensuring privacy of data throughout its life-cycle, vulnerability management (scanning, assessment, reporting, and mitigation verification), business continuity and disaster recovery.

Requirements

Candidates must bring the ability to communicate with executive leadership (internally or client) regarding matters of significant importance to the RHEL project.
BS degree with 10 or more years of experience (or MS with8 years); additional experience, training, and/or certifications may be considered in lieu of education requirement.
US Citizen
Currently possess an active TS/SCI or Secret clearance (ability to upgrade/maintain TS/SCI upon hire).
DoD 8570 IAT Level II+ (e.g., Security+ CE, SSCP, GSEC).
3+ years using ACAS, Evaluate-STIG, SCAP, and related vulnerability tools.
Hands-on experience with DoD RMF, XACTA/eMASS, and NIST 800-53 documentation.

Nice To Haves

In-depth understanding of defense information assurance technical principles, theories, concepts and their application.
CISSP certification
USAF or DoD cybersecurity background
Familiarity with NISSC or similar Air Force/Space Force program
Current TS/SCI

Responsibilities

Serve as the go-to cybersecurity lead for system owners, developers, and key stakeholders.
Develop and standardize ISSO processes that align with DoDI 8500.01 to ensure compliance.
Drive lessons learned, process optimization, and continuous improvement for the ISSO team.
Own every phase of the RMF lifecycle—from system categorization through continuous monitoring.
Prepare and maintain A&A documentation including SSPs, POA&Ms, and Security Assessment Reports.
Champion implementation and validation of NIST 800-53 controls and STIG compliance.
Lead vulnerability scanning, audit log reviews, and ensure accurate control documentation in eMASS/XACTA/CORE.
Guide systems toward ATO and support cyber readiness efforts including CCRIs and internal audits.
Collaborate on incident response strategies and contingency planning across engineering and operations.
Mentor junior IA engineers and support emergent maintenance activities.